Your a star Peter
This worked for me So I will test it again a few times with Nessus
before I go onto the other 3 Nessus warnings.
Thanks for your time and explaination this saved me compiling the
lastest apache 2 version which for now could do without.
Cheers
On Wed, 2006-05-10 at 11:01 +0100, Peter Rosenthal wrote:
> Hi Chuck,
>
> You don't need to modify security-rewrite.conf from what you have. But
> you do need to include that file in every vhost section you have, eg:
>
> <VirtualHost *:80>
> Include conf.d/security-rewrites.conf
> DocumentRoot /var/www/html
>
> ServerName www.vhost2.com
> ......
> </VirtualHost>
>
> <VirtualHost *:80>
> Include conf.d/security-rewrites.conf
>
> ServerName vhost2.com
> .......
> </VirtualHost>
>
>
> Notice the Include conf.d /security-rewrites.conf line in both
> vhost entries. You need to do this regardless of whether the vhost
> config is all in one file or in seperate files.
>
> On 5/9/06, Chuck Amadi Systems Administrator <[EMAIL PROTECTED]> wrote:
> Hi Pete
>
> I have touched a file named security-rewrite.conf in my conf
> directory.
>
> Thus in my httpd.conf I have a Include directive -
>
>
> Include conf/security-rewrite.conf
>
> Thus edit the security-rewrite.conf and add the following
> below:
>
> <IfModule mod_rewrite.c>
> RewriteEngine On
> ## # the following needs to be writeable by Apache
> ## ## every other URL is fetched from Zope
> RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
> RewriteRule .* - [F,L]
> </IfModule
>
> I had to migrate a old apache server to a to be commissioned
> apache 2
> version 2.0.54
>
> Thus all my virtual hosts are in the httpd.conf I am now
> thinking of
> compartmentalised this as I have for my local apache setups. I
> assume
> that once I have compartmentalised my vhosts I can just add
> the above to
> security-rewrite.conf But in my vhosts directory each vhost
> will have
> something like below:
>
> <VirtualHost *:80>
> ServerName company.my.co.uk
> ErrorLog /company.my.co.uk-error_log
> TransferLog /company.my.co.uk-access_log
>
> <IfModule mod_rewrite.c>
> ## # the following needs to be writeable by Apache
> ## ## every other URL is fetched from Zope
> RewriteRule ^/(.*)
>
> http://company.my.uk:9080/VirtualHostBase/http/company.my.co.uk:80/live_company_my_com/VirtualHostRoot/$1
> [P,L]
> </IfModule>
> </VirtualHost>
>
>
> Am I on the right track.
>
> Cheers
>
>
> In my conf directory On Tue, 2006-05-09 at 16:17 +0100, Peter
> Rosenthal
> wrote:
> > security-rewrite.conf
> --
> Unix/ Linux Systems Administrator
> Chuck Amadi
> The Surgical Material Testing Laboratory (SMTL),
> Princess of Wales Hospital
> Coity Road
> Bridgend,
> United Kingdom, CF31 1RQ.
> Email chuck.smtl.co.uk
> Tel: +44 1656 752820
> Fax: +44 1656 752830
>
>
> _______________________________________________
> Nessus mailing list
> [email protected]
> http://mail.nessus.org/mailman/listinfo/nessus
>
--
Unix/ Linux Systems Administrator
Chuck Amadi
The Surgical Material Testing Laboratory (SMTL),
Princess of Wales Hospital
Coity Road
Bridgend,
United Kingdom, CF31 1RQ.
Email chuck.smtl.co.uk
Tel: +44 1656 752820
Fax: +44 1656 752830
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
